NEW: Group Profiler — instant APT intel lookup. Try it →

← threatfilter.dev / all groups / TA459

TA459

G0062 China MITRE ATT&CK →

Overview

TA459 is a threat group believed to operate out of China that has targeted countries including Russia, Belarus, Mongolia, and others.

Capabilities

Exploitation of public-facing / client applications — ATT&CK T1203
Custom malware/implant development — ATT&CK: 4 attributed custom malware families

TTPs — 5 techniques across 2 tactics

Initial Access

T1566.001 Spearphishing Attachment

Execution

T1059.001 PowerShell
T1059.005 Visual Basic
T1203 Exploitation for Client Execution
T1204.002 Malicious File

Tools & malware (4)

gh0st RAT · NetTraveler · PlugX · ZeroT

Reporting (1)

APT Targets Financial Analysts with CVE-2017-0199 — Axel F